UNC data breach exposes 163,000 SSNs

School of Medicine at Chapel Hill hacked
By Jaikumar Vijayan

September 25, 2009 07:34 PM ET

 

Computerworld – The University of North Carolina at Chapel Hill on Friday began notifying about 163,000 women about the potential compromise of their Social Security numbers and other personal information after a hacker breached a system containing the data.

The breached server belonged to the UNC School of Medicine and contained information that was collected as part of a federally funded mammography research project. The system contained records on a total of 236,000 women, of which about 163,000 included Social Security numbers.

Matt Mauro, chairman of the university’s Department of Radiology said the breach was first discovered in July when a researcher reported problems accessing the system. A subsequent investigation by the school’s information systems staff revealed that the system had been hacked.

Though the breach was discovered in July, there are indications that the actual intrusion may have taken place as long as two years ago, Mauro said. “We think we found some viruses that date back to 2007,” he said.

The breached server received information from 31 different sites across the state, Mauro said. When the breach was discovered, the system was taken offline immediately and has remained that way since July, Mauro said.

The sites that were sending the information to UNC have stopped doing so for the moment, while stronger precautions are implemented to prevent a similar breach in future, he said.

The reason that notifications have only just started going out is because UNC technology officials and an external forensic team have required time to piece together the extent of the compromise and to figure out exactly who may have been affected by it, Mauro said.

So far, investigations have revealed nothing to suggest that the persons responsible for the break-in have downloaded or modified the data in any way. “But you just don’t know for sure. You have to be suspicious and you have to notify,” he said.

 

If  you are associated with the UNC School of Medicine, or know someone who is they need to know there is help out there for them. Identity Theft Shield has the total solution for these people; please have them call 1-866-510-7907 or log onto http://www.prepaidlegal.com/idt/bking62  to have professionals drive them down the road to recovery.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: